1 // permissions required by each component 2 grant codeBase "file:${java.home}/lib/ext/zipfs.jar" { 3 permission java.io.FilePermission "<<ALL FILES>>", "read,write,delete"; 4 permission java.lang.RuntimePermission "fileSystemProvider"; 5 permission java.util.PropertyPermission "*", "read"; 6 }; 7 8 grant codeBase "file:${java.home}/lib/ext/cldrdata.jar" { 9 permission java.lang.RuntimePermission "accessClassInPackage.sun.text.*"; 10 permission java.lang.RuntimePermission "accessClassInPackage.sun.util.*"; 11 permission java.util.PropertyPermission "*", "read"; 12 }; 13 14 grant codeBase "file:${java.home}/lib/ext/localedata.jar" { 15 permission java.lang.RuntimePermission "accessClassInPackage.sun.text.*"; 16 permission java.lang.RuntimePermission "accessClassInPackage.sun.util.*"; 17 permission java.util.PropertyPermission "*", "read"; 18 }; 19 20 grant codeBase "file:${java.home}/lib/ext/dnsns.jar" { 21 permission java.security.AllPermission; 22 }; 23 24 grant codeBase "file:${java.home}/lib/ext/nashorn.jar" { 25 permission java.security.AllPermission; 26 }; 27 28 grant codeBase "file:${java.home}/lib/ext/jfxrt.jar" { 29 permission java.security.AllPermission; 30 }; 31 32 grant codeBase "file:${java.home}/lib/ext/sunec.jar" { 33 permission java.security.AllPermission; 34 }; 35 36 grant codeBase "file:${java.home}/lib/ext/sunjce_provider.jar" { 37 permission java.security.AllPermission; 38 }; 39 40 grant codeBase "file:${java.home}/lib/ext/sunpkcs11.jar" { 41 permission java.security.AllPermission; 42 }; 43 44 // solaris-only 45 grant codeBase "file:${java.home}/lib/ext/ucrypto.jar" { 46 permission java.security.AllPermission; 47 }; 48 49 // windows-only 50 grant codeBase "file:${java.home}/lib/ext/sunmscapi.jar" { 51 permission java.security.AllPermission; 52 }; 53 54 grant codeBase "file:${java.home}/lib/ext/jaccess.jar" { 55 permission java.security.AllPermission; 56 }; 57 grant codeBase "file:${java.home}/lib/ext/access-bridge-64.jar" { 58 permission java.security.AllPermission; 59 }; 60 61 // default permissions granted to all domains 62 63 grant { 64 // Allows any thread to stop itself using the java.lang.Thread.stop() 65 // method that takes no argument. 66 // Note that this permission is granted by default only to remain 67 // backwards compatible. 68 // It is strongly recommended that you either remove this permission 69 // from this policy file or further restrict it to code sources 70 // that you specify, because Thread.stop() is potentially unsafe. 71 // See the API specification of java.lang.Thread.stop() for more 72 // information. 73 permission java.lang.RuntimePermission "stopThread"; 74 75 // allows anyone to listen on dynamic ports 76 permission java.net.SocketPermission "localhost:0", "listen"; 77 78 // "standard" properies that can be read by anyone 79 80 permission java.util.PropertyPermission "java.version", "read"; 81 permission java.util.PropertyPermission "java.vendor", "read"; 82 permission java.util.PropertyPermission "java.vendor.url", "read"; 83 permission java.util.PropertyPermission "java.class.version", "read"; 84 permission java.util.PropertyPermission "os.name", "read"; 85 permission java.util.PropertyPermission "os.version", "read"; 86 permission java.util.PropertyPermission "os.arch", "read"; 87 permission java.util.PropertyPermission "file.separator", "read"; 88 permission java.util.PropertyPermission "path.separator", "read"; 89 permission java.util.PropertyPermission "line.separator", "read"; 90 91 permission java.util.PropertyPermission "java.specification.version", "read"; 92 permission java.util.PropertyPermission "java.specification.vendor", "read"; 93 permission java.util.PropertyPermission "java.specification.name", "read"; 94 95 permission java.util.PropertyPermission "java.vm.specification.version", "read"; 96 permission java.util.PropertyPermission "java.vm.specification.vendor", "read"; 97 permission java.util.PropertyPermission "java.vm.specification.name", "read"; 98 permission java.util.PropertyPermission "java.vm.version", "read"; 99 permission java.util.PropertyPermission "java.vm.vendor", "read"; 100 permission java.util.PropertyPermission "java.vm.name", "read"; 101 }; 102